This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SEC 5.5.0 upgraded and agents still show vulnerability on TLS / SSL

Hello A

 

We have 2 Enterprise Consoles in our environment and cater to only 1200 + servers alone with no workstations. We had this vulnerability of TLS / SSL surfaced around 6 months back and at that time we had both our console on 5.4.0 Version.

 

When we raised a ticket with Sophos for a fix on this we were assured that post upgrade to 5.5.0 i.e. latest version of Sophos all agents would forcibly use TLS 1.2 and this vulnerability would be eliminated.

 

Now that we have our both SEC consoles on 5.5.0 version on a latest scan report of yesterday we could find that there are still agents facing SSL / TLS vulnerability and issue still prevails. We were surprised and shocked to see this. Clients have raised serious concerns on this issue and we need a immediate fix on this. What do we do ?



This thread was automatically locked due to age.
Parents
  • Any new updates as TLS 1.0 & TLS 1.1 is still active on all the servers after carrying out below commands

     

    Windows:

    1. Delete the pkc/pkp values from the following registry keys:

      HKEY_LOCAL_MACHINE\SOFTWARE\Sophos\Messaging System\Router\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sophos\Messaging System\Router\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Sophos\Remote Management System\ManagementAgent\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sophos\Remote Management System\ManagementAgent\Private\
    2. Restart the Sophos Message Router and Sophos Agent services

     

    What do we do now as this is not working for us

Reply
  • Any new updates as TLS 1.0 & TLS 1.1 is still active on all the servers after carrying out below commands

     

    Windows:

    1. Delete the pkc/pkp values from the following registry keys:

      HKEY_LOCAL_MACHINE\SOFTWARE\Sophos\Messaging System\Router\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sophos\Messaging System\Router\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Sophos\Remote Management System\ManagementAgent\Private\
      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sophos\Remote Management System\ManagementAgent\Private\
    2. Restart the Sophos Message Router and Sophos Agent services

     

    What do we do now as this is not working for us

Children
No Data